hacktricks/generic-methodologies-and-resources/search-exploits.md

# Search Exploits

{% hint style="success" %}
Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)

<details>

<summary>Support HackTricks</summary>

* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.

</details>
{% endhint %}

<figure><img src="../.gitbook/assets/image (48).png" alt=""><figcaption></figcaption></figure>

\
Use [**Trickest**](https://trickest.com/?utm_source=hacktricks&utm_medium=text&utm_campaign=ppc&utm_content=search-exploits) to easily build and **automate workflows** powered by the world's **most advanced** community tools.\
Get Access Today:

{% embed url="https://trickest.com/?utm_source=hacktricks&utm_medium=banner&utm_campaign=ppc&utm_content=search-exploits" %}

### Browser

Always search in "google" or others: **\<service\_name> \[version] exploit**

You should also try the **shodan** **exploit search** from [https://exploits.shodan.io/](https://exploits.shodan.io).

### Searchsploit

Useful to search exploits for services in **exploitdb from the console.**

```bash
#Searchsploit tricks
searchsploit "linux Kernel" #Example
searchsploit apache mod_ssl #Other example
searchsploit -m 7618 #Paste the exploit in current directory
searchsploit -p 7618[.c] #Show complete path
searchsploit -x 7618[.c] #Open vi to inspect the exploit
searchsploit --nmap file.xml #Search vulns inside an nmap xml result
```

### Pompem

[https://github.com/rfunix/Pompem](https://github.com/rfunix/Pompem) is another tool to search for exploits

### MSF-Search

```bash
msf> search platform:windows port:135 target:XP type:exploit
```

### PacketStorm

If nothing is found, try to search the used technology inside [https://packetstormsecurity.com/](https://packetstormsecurity.com)

### Vulners

You can also search in vulners database: [https://vulners.com/](https://vulners.com)

### Sploitus

This searches for exploits in other databases: [https://sploitus.com/](https://sploitus.com)

<figure><img src="../.gitbook/assets/image (48).png" alt=""><figcaption></figcaption></figure>

\
Use [**Trickest**](https://trickest.com/?utm_source=hacktricks&utm_medium=text&utm_campaign=ppc&utm_content=search-exploits) to easily build and **automate workflows** powered by the world's **most advanced** community tools.\
Get Access Today:

{% embed url="https://trickest.com/?utm_source=hacktricks&utm_medium=banner&utm_campaign=ppc&utm_content=search-exploits" %}

{% hint style="success" %}
Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)

<details>

<summary>Support HackTricks</summary>

* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.

</details>
{% endhint %}
GitBook: [#3181] No subject 2022-05-06 12:33:22 +00:00			`# Search Exploits`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`{% hint style="success" %}`
			`Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[HackTricks Training AWS Red Team Expert (ARTE)](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\`
			`Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[HackTricks Training GCP Red Team Expert (GRTE)<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`<details>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`<summary>Support HackTricks</summary>`
arte 2023-12-30 20:49:23 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`* Check the [subscription plans](https://github.com/sponsors/carlospolop)!`
GITBOOK-4274: change request with no subject merged in GitBook 2024-03-17 14:42:04 +00:00			`* Join the 💬 [Discord group](https://discord.gg/hRep4RUj7f) or the [telegram group](https://t.me/peass) or follow us on Twitter 🐦 [@hacktricks\_live](https://twitter.com/hacktricks\_live).`
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`* Share hacking tricks by submitting PRs to the [HackTricks](https://github.com/carlospolop/hacktricks) and [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github repos.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`{% endhint %}`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
GitBook: No commit message 2024-05-05 17:56:05 +00:00			`<figure><img src="../.gitbook/assets/image (48).png" alt=""><figcaption></figcaption></figure>`
trickest 2023-09-03 15:41:02 +00:00
			`\`
Update search-exploits.md 2024-04-30 16:03:58 +00:00			`Use [Trickest](https://trickest.com/?utm_source=hacktricks&utm_medium=text&utm_campaign=ppc&utm_content=search-exploits) to easily build and automate workflows powered by the world's most advanced community tools.\`
trickest 2023-09-03 15:41:02 +00:00			`Get Access Today:`

Update search-exploits.md 2024-04-30 16:03:58 +00:00			`{% embed url="https://trickest.com/?utm_source=hacktricks&utm_medium=banner&utm_campaign=ppc&utm_content=search-exploits" %}`
trickest 2023-09-03 15:41:02 +00:00
GitBook: [#3181] No subject 2022-05-06 12:33:22 +00:00			`### Browser`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
GitBook: [#2876] save 2021-11-30 16:46:07 +00:00			`Always search in "google" or others: \<service\_name> \[version] exploit`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
GitBook: [#2876] save 2021-11-30 16:46:07 +00:00			`You should also try the shodan exploit search from [https://exploits.shodan.io/](https://exploits.shodan.io).`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
GitBook: [#3181] No subject 2022-05-06 12:33:22 +00:00			`### Searchsploit`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
			`Useful to search exploits for services in exploitdb from the console.`

			```bash
			`#Searchsploit tricks`
			`searchsploit "linux Kernel" #Example`
			`searchsploit apache mod_ssl #Other example`
			`searchsploit -m 7618 #Paste the exploit in current directory`
			`searchsploit -p 7618[.c] #Show complete path`
			`searchsploit -x 7618[.c] #Open vi to inspect the exploit`
			`searchsploit --nmap file.xml #Search vulns inside an nmap xml result`
			```

GitBook: [#3181] No subject 2022-05-06 12:33:22 +00:00			`### Pompem`

			`[https://github.com/rfunix/Pompem](https://github.com/rfunix/Pompem) is another tool to search for exploits`

			`### MSF-Search`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
			```bash
			`msf> search platform:windows port:135 target:XP type:exploit`
			```

GitBook: [#3181] No subject 2022-05-06 12:33:22 +00:00			`### PacketStorm`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
GitBook: [#2777] gitbookissooooo slow I cannot write 2021-10-18 11:21:18 +00:00			`If nothing is found, try to search the used technology inside [https://packetstormsecurity.com/](https://packetstormsecurity.com)`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
GitBook: [#3181] No subject 2022-05-06 12:33:22 +00:00			`### Vulners`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
GitBook: [#2777] gitbookissooooo slow I cannot write 2021-10-18 11:21:18 +00:00			`You can also search in vulners database: [https://vulners.com/](https://vulners.com)`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
GitBook: [#3181] No subject 2022-05-06 12:33:22 +00:00			`### Sploitus`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Update search-exploits.md 2022-09-13 15:35:33 +00:00			`This searches for exploits in other databases: [https://sploitus.com/](https://sploitus.com)`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
GitBook: No commit message 2024-05-05 17:56:05 +00:00			`<figure><img src="../.gitbook/assets/image (48).png" alt=""><figcaption></figcaption></figure>`
trickest 2023-09-03 15:41:02 +00:00
			`\`
Update search-exploits.md 2024-04-30 16:03:58 +00:00			`Use [Trickest](https://trickest.com/?utm_source=hacktricks&utm_medium=text&utm_campaign=ppc&utm_content=search-exploits) to easily build and automate workflows powered by the world's most advanced community tools.\`
trickest 2023-09-03 15:41:02 +00:00			`Get Access Today:`

Update search-exploits.md 2024-04-30 16:03:58 +00:00			`{% embed url="https://trickest.com/?utm_source=hacktricks&utm_medium=banner&utm_campaign=ppc&utm_content=search-exploits" %}`
trickest 2023-09-03 15:41:02 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`{% hint style="success" %}`
			`Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[HackTricks Training AWS Red Team Expert (ARTE)](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\`
			`Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[HackTricks Training GCP Red Team Expert (GRTE)<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`<details>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`<summary>Support HackTricks</summary>`
arte 2023-12-30 20:49:23 +00:00
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`* Check the [subscription plans](https://github.com/sponsors/carlospolop)!`
GITBOOK-4274: change request with no subject merged in GitBook 2024-03-17 14:42:04 +00:00			`* Join the 💬 [Discord group](https://discord.gg/hRep4RUj7f) or the [telegram group](https://t.me/peass) or follow us on Twitter 🐦 [@hacktricks\_live](https://twitter.com/hacktricks\_live).`
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`* Share hacking tricks by submitting PRs to the [HackTricks](https://github.com/carlospolop/hacktricks) and [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github repos.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`
gpt-4o-mini 2024-07-18 20:49:07 +00:00			`{% endhint %}`